Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee endpoint security vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2021-23882
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows local administrators to prevent the installation of some ENS files by placing carefully crafted files where ENS will be installed. This is only applicable...
Mcafee Endpoint Security
4.4
CVSSv3
CVE-2021-23883
A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial prote...
Mcafee Endpoint Security
4.8
CVSSv3
CVE-2021-23881
A stored cross site scripting vulnerability in ePO extension of McAfee Endpoint Security (ENS) before 10.7.0 February 2021 Update allows an ENS ePO administrator to add a script to a policy event which will trigger the script to be run through a browser block page when a local no...
Mcafee Endpoint Security
7.8
CVSSv3
CVE-2019-3582
Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and previous versions allows local users to gain elevated privileges via a specific set of circumstances.
Mcafee Endpoint Security
6.1
CVSSv3
CVE-2016-8011
Cross-site scripting vulnerability in Intel Security McAfee Endpoint Security (ENS) Web Control prior to 10.2.0.408.10 allows malicious users to inject arbitrary web script or HTML via a crafted web site.
Intel Security Mcafee Endpoint Security Web Control
5.1
CVSSv3
CVE-2016-3984
The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) prior to 1.1.0.161, Agent (MA) 5.x prior to 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) prior to 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Pat...
Mcafee Active Response
Mcafee Data Loss Prevention Endpoint
Mcafee Data Exchange Layer
Mcafee Host Intrusion Prevention
Mcafee Virusscan Enterprise
Mcafee Agent
Mcafee Endpoint Security
1 EDB exploit
7
CVSSv3
CVE-2021-23892
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose ...
Mcafee Endpoint Security For Linux Threat Prevention
NA
CVE-2009-1348
The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, Security for Microsoft Sharepoint, Security for Email Servers, Email Gateway, and Active Virus Defense allows remote malicious users to bypass virus de...
Mcafee Internet Security Suite 2009
Mcafee Virusscan Usb
Mcafee Securityshield For Email Servers
Mcafee Email Gateway
Mcafee Virusscan Plus 2009
Mcafee Total Protection 2009
Mcafee Virusscan Enterprise
Mcafee Virusscan Enterprise -
Mcafee Total Protection For Endpoint
Mcafee Active Virus Defense
Mcafee Internet Security Suite 2005
Mcafee Internet Security Suite 2006
Mcafee Securityshield For Microsoft Isa Server
Mcafee Securityshield For Microsoft Sharepoint
Mcafee Internet Security Suite
Mcafee Internet Security Suite 2004
Mcafee Virusscan Commandline
Mcafee Active Virusscan
6.1
CVSSv3
CVE-2020-7324
Improper Access Control vulnerability in McAfee MVISION Endpoint before 20.9 Update allows local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions.
Mcafee Mvision Endpoint
7.8
CVSSv3
CVE-2018-6689
Authentication Bypass vulnerability in McAfee Data Loss Prevention Endpoint (DLPe) 10.0.x earlier than 10.0.510, and 11.0.x earlier than 11.0.600 allows malicious users to bypass local security protection via specific conditions.
Mcafee Data Loss Prevention Endpoint
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »